cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-22037,https://securityvulnerability.io/vulnerability/CVE-2024-22037,Uyuni server attestation service exposed database password,"The uyuni-server-attestation systemd service has a significant security flaw related to its database password configuration. Specifically, it relies on an environment variable that is not properly secured. The associated file has permissions set to 640, limiting access to privileged users. However, the environment variable is still visible to non-privileged users through the systemd service management, leading to potential credential exposure. Organizations utilizing the Uyuni Server are urged to review their security configurations to mitigate risks associated with this exposure.",Suse,Suse Manager Server 5.0,5.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-28T09:46:07.525Z,0